$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c47ed4c8-aa67-496c-9b5b-0bd92c0e3008.roa File: c47ed4c8-aa67-496c-9b5b-0bd92c0e3008.roa (raw, json) Hash identifier: 62A6efdg95DSZPQifRnfA8NfVENMmvnxcL6clqFgTkM= Subject key identifier: 95:30:5B:E0:7B:39:FE:D8:65:37:C0:C2:29:26:65:FD:2E:00:F8:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FC121EF3EA637D27BB41FEFA7B795E344870002 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c47ed4c8-aa67-496c-9b5b-0bd92c0e3008.roa Signing time: Tue 24 Feb 2026 02:10:04 +0000 ROA not before: Tue 24 Feb 2026 02:10:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c1:21:ef:3e:a6:37:d2:7b:b4:1f:ef:a7:b7:95:e3:44:87:00:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:10:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=0e66fb254a024f651883b45cd43e72f6ce6f4627a5d7742b5d7ca927d12f71e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:70:d7:e0:bb:01:a5:fb:3c:f6:b5:31:4f:bc: 94:4c:ef:72:ef:c7:3d:1a:a3:71:1d:94:a4:a5:0e: fc:18:4d:7d:a6:fa:ef:6d:4a:c3:c4:75:20:9c:7a: 98:a4:c2:b9:0b:37:66:b3:ae:e5:ea:dc:5c:62:51: 45:b5:14:57:bf:72:dd:96:b8:1d:5c:3f:2c:23:1c: f0:36:b0:b1:4c:fa:02:39:83:ab:4d:e2:40:d7:2b: 38:c5:bd:d3:a9:57:f7:24:fe:e6:1e:1f:57:dd:34: 9d:0a:f7:57:d6:f4:12:52:33:7d:2e:8f:1d:25:9f: b4:c1:1d:87:b1:c7:ad:5a:51:50:fb:4a:5f:c1:d1: 40:bd:4c:31:b5:15:97:ae:da:24:29:7a:c3:2b:57: ef:70:c3:a0:dc:fa:b4:e3:59:7c:9f:52:d9:93:d1: a6:42:12:5b:6f:cb:86:41:32:f0:21:1e:75:a9:4a: a7:ce:be:7a:4a:3d:ee:8e:bd:5c:c7:fb:c1:c5:8b: c8:65:97:c9:e8:30:b2:1f:98:95:97:71:8f:3f:45: ab:b0:f7:eb:e1:1f:d3:d1:b9:9f:d2:2f:21:01:02: b1:70:01:a2:fa:60:3f:86:c5:85:81:45:82:d7:82: 2d:e7:45:73:22:5a:51:8f:06:2b:4d:22:03:e5:5d: 4f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:30:5B:E0:7B:39:FE:D8:65:37:C0:C2:29:26:65:FD:2E:00:F8:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c47ed4c8-aa67-496c-9b5b-0bd92c0e3008.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:a9:c3:d5:6f:12:47:de:14:01:f3:d5:bf:5b:db:c4:d2:cd: 2b:5e:d9:9a:dd:bc:21:eb:98:39:68:6a:18:4c:29:81:ef:a6: 1c:a9:d9:e6:3a:88:76:f7:f2:38:a1:6c:b9:42:2d:55:05:55: b6:34:0a:5a:2f:1d:e5:bb:9c:cc:d7:d6:08:89:20:d5:87:be: 3f:58:bb:73:8c:e4:98:60:43:85:e3:eb:8b:7f:4f:18:2c:07: 2f:46:d8:bd:6d:6b:99:14:ab:a2:47:39:76:66:69:e1:2e:67: 02:27:e7:b0:a1:96:f0:83:ae:d1:2f:27:3e:eb:15:5b:e6:87: 35:d9:c7:b2:69:c5:75:bc:1a:dd:1c:75:ed:b1:3f:af:66:f3: 91:71:7c:d8:b1:2f:92:6a:36:17:15:91:68:f2:6d:0d:af:21: 5f:1d:ab:79:b1:61:5a:6b:ed:86:91:66:a6:be:17:12:69:4b: 09:93:a1:75:40:88:84:0b:61:da:06:c1:7e:fc:37:ac:62:6a: 0e:d6:7d:20:7e:28:75:dc:d9:db:ce:d1:2a:5c:ea:52:f0:26: 78:2e:5f:b8:20:07:7b:36:8f:09:e6:6b:46:84:8f:fa:0b:5a: 05:73:47:ec:59:ea:27:e7:74:c0:9b:27:42:cf:4a:06:29:b7: 68:cd:26:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD8Eh7z6mN9J7tB/vp7eV40SHAAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMDA0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTY2ZmIyNTRhMDI0ZjY1MTg4M2I0NWNkNDNlNzJmNmNl NmY0NjI3YTVkNzc0MmI1ZDdjYTkyN2QxMmY3MWU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbcNfguwGl+zz2tTFPvJRM73Lvxz0ao3EdlKSlDvwYTX2m +u9tSsPEdSCcepikwrkLN2azruXq3FxiUUW1FFe/ct2WuB1cPywjHPA2sLFM+gI5 g6tN4kDXKzjFvdOpV/ck/uYeH1fdNJ0K91fW9BJSM30ujx0ln7TBHYexx61aUVD7 Sl/B0UC9TDG1FZeu2iQpesMrV+9ww6Dc+rTjWXyfUtmT0aZCEltvy4ZBMvAhHnWp SqfOvnpKPe6OvVzH+8HFi8hll8noMLIfmJWXcY8/Rauw9+vhH9PRuZ/SLyEBArFw AaL6YD+GxYWBRYLXgi3nRXMiWlGPBitNIgPlXU8xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlTBb4Hs5/thlN8DCKSZl/S4A+MQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0N2VkNGM4LWFhNjctNDk2Yy05YjViLTBiZDkyYzBlMzAwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwjANBgkqhkiG9w0BAQsFAAOCAQEAWqnD1W8SR94UAfPVv1vbxNLNK17Z mt28IeuYOWhqGEwpge+mHKnZ5jqIdvfyOKFsuUItVQVVtjQKWi8d5buczNfWCIkg 1Ye+P1i7c4zkmGBDhePri39PGCwHL0bYvW1rmRSrokc5dmZp4S5nAifnsKGW8IOu 0S8nPusVW+aHNdnHsmnFdbwa3Rx17bE/r2bzkXF82LEvkmo2FxWRaPJtDa8hXx2r ebFhWmvthpFmpr4XEmlLCZOhdUCIhAth2gbBfvw3rGJqDtZ9IH4oddzZ287RKlzq UvAmeC5fuCAHezaPCeZrRoSP+gtaBXNH7FnqJ+d0wJsnQs9KBim3aM0m5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:19 2026 by rpki-client